Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft
File: vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft (raw, json)
Hash identifier: rp6n+/PF1AdVQCJxOAVy4t3wLkj99LaXx2pT1ofmdvQ=
Subject key identifier: D9:30:94:71:7A:C9:53:F6:C4:96:E7:49:DB:5D:1D:81:E4:F6:AA:93
Authority key identifier: BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F
Certificate issuer: /CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F
Certificate serial: 0151
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft
Manifest number: 0148
Signing time: Sat 29 Mar 2025 03:43:49 +0000
Manifest this update: Sat 29 Mar 2025 03:43:48 +0000
Manifest next update: Sat 05 Apr 2025 03:43:48 +0000
Files and hashes: 1: vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl (hash: t58dlVQv8IhxTCjDndvp8923ZY+BMPULfVWuNV+0ZTY=)
2: 4231A1AA1B1711EEA5566A23C4F9AE02.roa (hash: lTkc7C0RlmKbFSYdbjr+dPk/Bz3louAuGeeNLMUaa3U=)
3: F0237E941B1911EE9DFF2942C4F9AE02.roa (hash: OFcdlnYr84QtfXIjFkq221jW9RB67N6+iA5hYs6y+y0=)
4: 60B707FA1AEA11EE92BEA24CC4F9AE02.roa (hash: kXqagkJo/A0eBKA6rzsFPrgkBqXmX4C+r5kQGo8fciw=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337 (0x151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F4957
Validity
Not Before: Mar 29 03:43:48 2025 GMT
Not After : Apr 5 03:43:48 2025 GMT
Subject: CN=67e76c75-1e0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:62:b1:fe:92:2e:06:1f:0e:87:69:bf:60:08:
4d:17:ba:c1:8f:c1:6b:61:db:87:fc:36:63:5a:8d:
46:b2:cb:cb:6a:2e:2b:b2:23:88:23:0c:a5:16:0f:
11:b0:7f:f2:60:ca:9d:b5:3e:77:47:71:96:6e:68:
1b:ee:0c:b6:21:3a:cb:62:ae:41:2a:99:63:e6:c7:
5e:f8:8d:d6:ac:d4:9c:10:d1:12:64:2a:40:d9:e1:
a9:a4:bd:34:40:85:04:9b:57:56:cb:c9:c9:a4:0a:
7e:3d:40:2b:76:44:1b:fe:1c:cf:06:33:b4:bc:a3:
d8:df:05:12:57:5a:3d:f5:be:ee:03:d7:10:7f:9d:
f6:51:3c:36:af:4d:b5:ed:07:96:1b:1e:0c:cf:57:
85:01:4f:01:eb:9c:c8:58:a8:54:96:9b:57:f1:6b:
2f:db:15:9f:cc:98:47:92:8b:42:9b:a8:e1:79:b6:
20:65:26:8d:b3:ca:94:66:19:0d:9b:74:e9:b6:99:
0c:c5:90:92:46:67:1f:70:07:87:11:32:85:35:eb:
4c:94:46:b0:57:b3:bf:e0:d7:e4:00:fc:16:64:5c:
03:28:92:13:a5:d0:4c:7b:99:58:fb:a6:7a:1a:8a:
5c:25:8c:cd:1a:32:7e:c3:7a:dd:b0:e0:57:b8:e4:
9e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:30:94:71:7A:C9:53:F6:C4:96:E7:49:DB:5D:1D:81:E4:F6:AA:93
X509v3 Authority Key Identifier:
keyid:BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
44:c5:4e:dd:cc:78:f5:95:75:03:2c:3d:36:ae:65:18:02:da:
8f:19:e6:58:48:ec:cc:c3:32:d9:b2:60:4c:ce:02:fa:87:1a:
cd:c2:75:ca:72:81:58:b9:01:6c:6b:32:e4:1f:c9:9c:7f:f8:
38:1f:50:57:af:ef:73:d6:14:61:fb:34:4f:a6:24:dd:42:bf:
d1:89:50:24:fe:06:9f:f7:ea:d9:7c:97:34:a1:39:0a:48:2c:
69:e4:66:6f:ea:26:63:85:40:8b:4e:84:d3:56:a2:b2:a7:a7:
b3:a0:f0:45:8b:1f:ec:ba:29:3e:42:8f:a5:95:07:b2:27:45:
ab:6b:bb:01:d6:7e:3b:dc:8a:8a:aa:66:4e:26:7c:a4:33:02:
00:97:14:e2:0b:75:41:4c:66:0b:25:08:2e:f7:f2:e1:f2:9d:
50:60:a9:c8:8c:20:05:eb:85:c0:9d:a0:53:b0:84:62:7b:55:
2f:79:b9:ac:34:f7:c7:9e:d7:a4:45:f4:04:e5:88:7c:81:b4:
b9:60:5d:00:96:5b:b1:91:f8:66:af:ab:2a:9d:9e:2d:cb:2d:
f0:c5:36:37:d0:1e:0e:aa:da:21:27:be:97:dd:bd:f5:c2:58:
69:a3:5c:51:12:14:73:cb:08:61:21:a2:a2:e5:ba:33:28:d5:
f8:32:4a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:02:54 2025 by rpki-client